Automatically Repairing Stripped Executables with CFG Microsurgery

2015 IEEE International Conference on Self-Adaptive and Self-Organizing Systems Workshops Pub Date : 2015-09-21 DOI:10.1109/SASOW.2015.21

Scott E Friedman, D. Musliner

{"title":"Automatically Repairing Stripped Executables with CFG Microsurgery","authors":"Scott E Friedman, D. Musliner","doi":"10.1109/SASOW.2015.21","DOIUrl":null,"url":null,"abstract":"BINSURGEON is a binary rewriting system that enhances stripped binary executables with repairs, defenses, and additional functionality. This involves making space-consuming changes to the program's control flow graph (CFG), recomputing instruction content, and relocating instructions, all while preserving functionality in the remainder of the program's control flow. BINSURGEON uses extendable rewrite templates that enable other systems to specify and parameterize program modifications, which allows BINSURGEON to be a fully-automatic component of a larger system. In this paper, we describe BINSURGEON in the context of the FUZZBOMB automated program analysis and repair system. We outline BIN Surgeon's general binary rewriting algorithm for modifying CFGs according to FUZZ Bomb's rewrite templates. We also review some of FUZZ Bomb's rewrite templates to demonstrate the diverse repair and defense strategies -- including stack protection, heap protection, CFI, pointer-checking, and more -- that are implemented by BINSURGEON to harden and repair vulnerable binaries.","PeriodicalId":384469,"journal":{"name":"2015 IEEE International Conference on Self-Adaptive and Self-Organizing Systems Workshops","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-09-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 IEEE International Conference on Self-Adaptive and Self-Organizing Systems Workshops","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SASOW.2015.21","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

BINSURGEON is a binary rewriting system that enhances stripped binary executables with repairs, defenses, and additional functionality. This involves making space-consuming changes to the program's control flow graph (CFG), recomputing instruction content, and relocating instructions, all while preserving functionality in the remainder of the program's control flow. BINSURGEON uses extendable rewrite templates that enable other systems to specify and parameterize program modifications, which allows BINSURGEON to be a fully-automatic component of a larger system. In this paper, we describe BINSURGEON in the context of the FUZZBOMB automated program analysis and repair system. We outline BIN Surgeon's general binary rewriting algorithm for modifying CFGs according to FUZZ Bomb's rewrite templates. We also review some of FUZZ Bomb's rewrite templates to demonstrate the diverse repair and defense strategies -- including stack protection, heap protection, CFI, pointer-checking, and more -- that are implemented by BINSURGEON to harden and repair vulnerable binaries.

查看原文本刊更多论文

自动修复剥离的可执行文件与CFG显微手术

BINSURGEON是一个二进制重写系统，它通过修复、防御和其他功能增强了剥离的二进制可执行文件。这包括对程序的控制流图(CFG)进行占用空间的更改，重新计算指令内容和重新定位指令，同时保留程序控制流其余部分的功能。BINSURGEON使用可扩展的重写模板，使其他系统能够指定和参数化程序修改，这使得BINSURGEON成为更大系统的全自动组件。在本文中，我们在FUZZBOMB自动程序分析和维修系统的背景下描述了BINSURGEON。我们概述了BIN外科医生根据FUZZ Bomb的重写模板修改CFGs的一般二进制重写算法。我们还回顾了一些FUZZ Bomb的重写模板，以展示各种修复和防御策略-包括堆栈保护，堆保护，CFI，指针检查等-由BINSURGEON实现，以加固和修复易受攻击的二进制文件。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2015 IEEE International Conference on Self-Adaptive and Self-Organizing Systems Workshops

自引率

0.00%

发文量